6220bbe6c26d87fc343e0ffa4e20ccfafeca7dab2742e41963c40b56fb884807 | Triage

Submit
Reports

Overview

overview

7

Static

static

3

7z2406-x64.exe

windows10-1703-x64

7

Sharing

General

Target

7z2406-x64.exe
Size

1.5MB
Sample

240618-n3lexawgrp
MD5

d8af785ca5752bae36e8af5a2f912d81
SHA1

54da15671ad8a765f3213912cba8ebd8dac1f254
SHA256

6220bbe6c26d87fc343e0ffa4e20ccfafeca7dab2742e41963c40b56fb884807
SHA512

b635b449f49aac29234f677e662be35f72a059401ea0786d956485d07134f9dd10ed284338503f08ff7aad16833cf034eb955ca34e1faf35a8177ccad1f20c75
SSDEEP

49152:6E+lvaQr7omhpcibOw1eLmz6O92u3RtRj08+Z3bG:6EzQ3/hdSzLVO92uTRmZy

Score

7^/10

discovery persistence privilege_escalation

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7z2406-x64.exe

Resource

win10-20240404-en

discovery persistence privilege_escalation

windows10-1703-x64

12 signatures

150 seconds

Malware Config

Targets

- Target
  
  7z2406-x64.exe
- Size
  
  1.5MB
- MD5
  
  d8af785ca5752bae36e8af5a2f912d81
- SHA1
  
  54da15671ad8a765f3213912cba8ebd8dac1f254
- SHA256
  
  6220bbe6c26d87fc343e0ffa4e20ccfafeca7dab2742e41963c40b56fb884807
- SHA512
  
  b635b449f49aac29234f677e662be35f72a059401ea0786d956485d07134f9dd10ed284338503f08ff7aad16833cf034eb955ca34e1faf35a8177ccad1f20c75
- SSDEEP
  
  49152:6E+lvaQr7omhpcibOw1eLmz6O92u3RtRj08+Z3bG:6EzQ3/hdSzLVO92uTRmZy
Score

7^/10

discovery persistence privilege_escalation
- Event Triggered Execution: Component Object Model Hijacking
  Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
  persistence privilege_escalation
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Event Triggered Execution

Component Object Model Hijacking

Privilege Escalation

Event Triggered Execution

Component Object Model Hijacking

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

discoverypersistenceprivilege_escalation

© 2018-2024

Terms | Privacy